RELEASED: 2021-08-25
Security fixes
- LDAP permissions were not updated until Jenkins was restarted (BEE-5618)
-
When you used LDAP to grant users new permissions in RBAC, the changes were not effective until you restarted Jenkins.
Permissions are now updated in RBAC without having to restart Jenkins.
Upgrade notes
CloudBees recommends that you upgrade to the August 2021 release of Jenkins LTS as soon as possible. The August 2021 release includes a change that removes the Apache Commons Digester from Jenkins Core. If you use Jenkins plugins that are not in the CloudBees Assurance Program (CAP), you should update them before upgrading your CloudBees products to ensure compatibility with the August release. If your company uses its own proprietary (non-CloudBees) plugins, CloudBees recommends that you test them against Jenkins version 2.302+ prior to the August release. As always, backing up your data before upgrading is strongly encouraged. For details about this change and a list of impacted plugins, please refer to our knowledge base article Commons Digester Library Removal.